Sd-wan Vmanage Security Vulnerabilities and Issues — Sd-wan Vmanage CVE List

Lucene search

CiscoSd-wan Vmanage

7 matches found

CVE•added 2021/05/06 1:15 p.m.•71 views

CVE-2021-1535

A vulnerability in the cluster management interface of Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to view sensitive information on an affected system. To be affected by this vulnerability, the Cisco SD-WAN vManage Software must be in cluster mode. This vulnerabili...

5.3CVSS5.2AI score0.00307EPSS

CVE•added 2021/01/20 9:15 p.m.•64 views

CVE-2021-1235

A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to read sensitive database files on an affected system. The vulnerability is due to insufficient user authorization. An attacker could exploit this vulnerability by accessing the vshell of an af...

5.5CVSS5.2AI score0.00061EPSS

CVE•added 2023/09/27 6:15 p.m.•54 views

CVE-2023-20179

A vulnerability in the web-based management interface of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, remote attacker to inject HTML content. This vulnerability is due to improper validation of user-supplied data in element fields. An attacker could ex...

5.4CVSS5.3AI score0.00081EPSS

CVE•added 2021/05/06 1:15 p.m.•53 views

CVE-2021-1486

A vulnerability in Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to enumerate user accounts. This vulnerability is due to the improper handling of HTTP headers. An attacker could exploit this vulnerability by sending authenticated requests to an affected system. A su...

5.3CVSS5.2AI score0.00365EPSS

CVE•added 2022/10/10 9:15 p.m.•50 views

CVE-2022-20830

A vulnerability in authentication mechanism of Cisco Software-Defined Application Visibility and Control (SD-AVC) on Cisco vManage could allow an unauthenticated, remote attacker to access the GUI of Cisco SD-AVC without authentication. This vulnerability exists because the GUI is accessible on sel...

5.3CVSS5.3AI score0.00325EPSS

CVE•added 2021/09/23 3:15 a.m.•45 views

CVE-2021-1546

A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to access sensitive information. This vulnerability is due to improper protections on file access through the CLI. An attacker could exploit this vulnerability by running a CLI command that targets an a...

5.5CVSS5.5AI score0.00154EPSS

CVE•added 2021/07/22 4:15 p.m.•43 views

CVE-2021-34700

A vulnerability in the CLI interface of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to read arbitrary files on the underlying file system of an affected system. This vulnerability exists because access to sensitive information on an affected system is not sufficiently...

5.5CVSS5.4AI score0.00053EPSS